$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa File: AS48605.roa (raw, json) Hash identifier: sV5jUh2bgPfX06Ra7RgI5p+ywMm/xPf4zsYMIU7ZXvw= Subject key identifier: 63:42:5D:47:27:DC:38:B7:1A:0F:34:0A:DF:B7:01:F1:99:B1:3A:2F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7D3EDE8D5739E25F6D543E3B6A7B003AD0E02235 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa Signing time: Mon 26 Feb 2024 22:58:06 +0000 ROA not before: Mon 26 Feb 2024 22:53:06 +0000 ROA not after: Mon 24 Feb 2025 22:58:06 +0000 asID: 48605 IP address blocks: 2a05:dfc1:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:3e:de:8d:57:39:e2:5f:6d:54:3e:3b:6a:7b:00:3a:d0:e0:22:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 26 22:53:06 2024 GMT Not After : Feb 24 22:58:06 2025 GMT Subject: CN=63425D4727DC38B71A0F340ADFB701F199B13A2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:1c:5f:28:93:85:dc:68:f5:9e:aa:bf:74: 92:64:93:f9:0d:dc:2d:d2:77:64:59:13:08:06:08: 07:14:e3:36:bf:20:c9:8f:96:b6:72:8d:94:90:41: e6:22:c1:83:0d:5b:a2:e6:b2:4b:89:69:61:14:42: 7c:3c:a1:e3:5e:1f:cc:74:b6:32:fb:0c:78:96:62: b6:4c:58:c8:67:3d:30:c8:ad:bc:e6:d7:d0:97:b3: 52:02:73:6f:5b:7b:57:5e:07:0b:57:a7:a1:4d:79: 9f:1b:a3:a4:f0:e9:39:42:40:f9:ff:48:a0:08:7e: 0a:d7:b4:5b:d4:af:49:11:a6:63:50:9b:dc:aa:1d: a6:94:ec:98:7a:f4:f7:8e:0e:96:bd:34:58:f6:aa: 4e:eb:0b:46:5c:15:51:ff:16:02:f7:aa:d8:0e:3d: 56:19:a3:dd:4a:04:86:b3:7c:ed:74:ab:11:a2:f3: dc:f5:8e:e9:cd:88:12:7e:4e:1d:ba:de:9e:21:f7: 59:94:f6:2b:c4:80:4c:af:5e:da:a1:52:8c:7e:69: 0b:40:4f:ca:cf:5e:51:d5:a6:2f:40:8a:64:89:de: b4:7a:d2:89:b8:da:42:26:f7:2c:8b:75:6d:be:e8: 8e:d6:0e:b1:80:54:b0:85:1e:ba:6c:9d:db:00:52: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:42:5D:47:27:DC:38:B7:1A:0F:34:0A:DF:B7:01:F1:99:B1:3A:2F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1200::/40 Signature Algorithm: sha256WithRSAEncryption c4:df:fe:a2:e4:32:1c:70:b9:b8:c0:58:e2:05:7e:00:db:2f: 2e:5c:23:f7:1f:58:cb:07:f8:76:35:a2:6c:d7:24:ec:87:ba: 73:6c:b5:47:04:88:1f:cb:cb:bb:71:9f:e6:fe:9d:57:57:b1: 65:c8:33:2c:13:a2:7e:c2:b8:24:6e:76:87:9f:75:7c:e9:18: 5d:92:1a:82:40:4b:c1:0a:ee:e1:14:18:28:71:bd:9d:fa:63: fb:c6:30:19:cc:cc:6f:4e:04:94:89:a3:56:e8:7d:09:fe:02: 5c:44:cb:56:83:9a:48:5d:5c:d3:9b:cc:41:0d:84:70:03:fe: 71:0b:b6:22:5d:39:b5:bf:38:4b:95:cd:1f:0c:49:cd:2e:6b: 14:04:b5:d9:77:ca:3d:94:f2:8f:89:a6:a2:52:be:31:e2:08: 43:77:eb:32:a4:cd:7a:7f:15:43:30:a6:a4:6d:8c:d1:cc:b1: 84:3d:b8:59:5d:97:71:15:bd:ef:a7:fe:75:39:bd:57:1f:ff: 75:0a:98:b0:37:7b:ca:f0:bf:8d:23:81:3d:28:2b:9f:68:b2: c4:5a:da:73:b3:88:19:6b:0f:22:62:4b:58:5c:e0:ef:a9:38: b9:5a:6f:28:53:6e:0d:98:ca:56:c3:f7:86:95:d4:09:78:ce: 06:f0:30:4a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfT7ejVc54l9tVD47ansAOtDgIjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjYyMjUzMDZaFw0yNTAyMjQyMjU4MDZaMDMxMTAvBgNV BAMTKDYzNDI1RDQ3MjdEQzM4QjcxQTBGMzQwQURGQjcwMUYxOTlCMTNBMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNtxxfKJOF3Gj1nqq/dJJkk/kN 3C3Sd2RZEwgGCAcU4za/IMmPlrZyjZSQQeYiwYMNW6LmskuJaWEUQnw8oeNeH8x0 tjL7DHiWYrZMWMhnPTDIrbzm19CXs1ICc29be1deBwtXp6FNeZ8bo6Tw6TlCQPn/ SKAIfgrXtFvUr0kRpmNQm9yqHaaU7Jh69PeODpa9NFj2qk7rC0ZcFVH/FgL3qtgO PVYZo91KBIazfO10qxGi89z1junNiBJ+Th263p4h91mU9ivEgEyvXtqhUox+aQtA T8rPXlHVpi9AimSJ3rR60om42kIm9yyLdW2+6I7WDrGAVLCFHrpsndsAUunzAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUY0JdRyfcOLcaDzQK37cB8ZmxOi8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg2MDUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BEjANBgkqhkiG9w0BAQsFAAOCAQEAxN/+ ouQyHHC5uMBY4gV+ANsvLlwj9x9Yywf4djWibNck7Ie6c2y1RwSIH8vLu3Gf5v6d V1exZcgzLBOifsK4JG52h591fOkYXZIagkBLwQru4RQYKHG9nfpj+8YwGczMb04E lImjVuh9Cf4CXETLVoOaSF1c05vMQQ2EcAP+cQu2Il05tb84S5XNHwxJzS5rFAS1 2XfKPZTyj4mmolK+MeIIQ3frMqTNen8VQzCmpG2M0cyxhD24WV2XcRW976f+dTm9 Vx//dQqYsDd7yvC/jSOBPSgrn2iyxFrac7OIGWsPImJLWFzg76k4uVpvKFNuDZjK VsP3hpXUCXjOBvAwSg== -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org